fdonnet
diff --git a/‎README.md‎
Lines changed: 5 additions & 1 deletion b/‎README.md‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎UbikLink.AppHost/Program.cs‎
Lines changed: 2 additions & 0 deletions b/‎UbikLink.AppHost/Program.cs‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎UbikLink.AppHost/appsettings.json‎
Lines changed: 2 additions & 1 deletion b/‎UbikLink.AppHost/appsettings.json‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎UbikLink.Common/Api/AuthRegisterAuthKey.cs‎
Lines changed: 2 additions & 0 deletions b/‎UbikLink.Common/Api/AuthRegisterAuthKey.cs‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎UbikLink.Common/UbikLink.Common.csproj‎
Lines changed: 1 addition & 1 deletion b/‎UbikLink.Common/UbikLink.Common.csproj‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎UbikLink.Proxy/Authorizations/UserTenantRolesOrAuthorizationsRequirement.cs‎
Lines changed: 1 addition & 1 deletion b/‎UbikLink.Proxy/Authorizations/UserTenantRolesOrAuthorizationsRequirement.cs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎UbikLink.Proxy/UbikLink.Proxy.csproj‎
Lines changed: 1 addition & 1 deletion b/‎UbikLink.Proxy/UbikLink.Proxy.csproj‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎UbikLink.Security.Api/Data/Config/UserConfiguration.cs‎
Lines changed: 3 additions & 0 deletions b/‎UbikLink.Security.Api/Data/Config/UserConfiguration.cs‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎UbikLink.Security.Api/Data/Init/MandatoryData.cs‎
Lines changed: 2 additions & 0 deletions b/‎UbikLink.Security.Api/Data/Init/MandatoryData.cs‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎UbikLink.Security.Api/Data/Init/TestData.cs‎
Lines changed: 5 additions & 0 deletions b/‎UbikLink.Security.Api/Data/Init/TestData.cs‎
Lines changed: 5 additions & 0 deletions
@@ -14,6 +14,10 @@ SvelteKit Frontend added. (not working in Aspire with fnm), so:
 
 `npm install, npm run dev in svelte-link-ui folder`
 
+After all the Aspire things are mounted.
+
+Simple onboarding endpoints + Svelle exmple. Now you can register new users and test. (Very simple and naive, but you have an example you can build on.)
+
 ## Goal
 
 This project allows you to choose any OAuth provider and remain independent in terms of your security design. You can add any frontend (Blazor, Next.js, SvelteKit) or backend APIs in front or behind this security layer. For a full SPA, you can modify Yarp to be a full BFF (Backend for Frontend).
@@ -67,5 +71,5 @@ For your backend APIs, in the EF Core pooled DbContext factory, the user is inje
 
 ## How You Can Help
 
-If you find this project useful, you can help by reviewing the implementation or contributing to make it more generic (user onboarding from oauth provider via webhook or other stuff). It's a side project on a boring and not "sexy" topic for me, but I hope it can be helpful to some of you. This project aims to avoid fully managed pricey solutions because, in the end, we only need simple OAuth authentication and to manage our authorization layer by ourselves. Help on that will be appreciated.
+If you find this project useful, you can help by reviewing the implementation or contributing to make it more generic ~~(user onboarding from oauth provider via webhook or other stuff)~~ => simple onboarding implmented. It's a side project on a boring and not "sexy" topic for me, but I hope it can be helpful to some of you. This project aims to avoid fully managed pricey solutions because, in the end, we only need simple OAuth authentication and to manage our authorization layer by ourselves. Help on that will be appreciated.
 
@@ -18,6 +18,7 @@
 var transportType = builder.AddParameter("transport-type", secret: false);
 var authTokenStoreKey = builder.AddParameter("auth-token-store-key", secret: true);
 var authRegisterAuthorizationKey = builder.AddParameter("auth-register-authorization-key", secret: true);
+var emailActivationEnable = builder.AddParameter("email-activation-enable", secret: false);
 
 //Postgres (local)
 var db = builder.AddPostgres("ubiklink-postgres", postgresUsername, postgresPassword)
@@ -55,6 +56,7 @@
     .WithEnvironment("Messaging__RabbitUser", rabbitUser)
     .WithEnvironment("Messaging__RabbitPassword", rabbitPassword)
     .WithEnvironment("AuthRegister__Key", authRegisterAuthorizationKey)
+    .WithEnvironment("AuthRegister__EmailActivationActivated", emailActivationEnable)
     .WithReference(securityDB)
     .WaitFor(securityDB)
     .WithReference(rabbitmq)
 
@@ -33,5 +33,6 @@
   "ConnectionStrings:messaging": "xx",
   "Parameters:keycloak-password": "admin",
   "Parameters:auth-token-store-key": "Ye6Y36ocA4SaGqYzd0HgmqMhVaM2jlkE",
-  "Parameters:auth-register-authorization-key": "Ye6Y36oddddcA4SaGqYzd0HgmqMhVaM2jlkE"
+  "Parameters:auth-register-authorization-key": "Ye6Y36oddddcA4SaGqYzd0HgmqMhVaM2jlkE",
+  "Parameters:email-activation-enable": "false"
 }
@@ -6,9 +6,11 @@
 
 namespace UbikLink.Common.Api
 {
+    //TODO: don't forget to activate the email activation
     public class AuthRegisterAuthKey
     {
         public const string Position = "AuthRegister";
         public string Key { get; set; } = string.Empty;
+        public bool EmailActivationActivated { get; set; } = false;
     }
 }
@@ -21,7 +21,7 @@
     <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="9.0.2" />
     <PackageReference Include="Microsoft.EntityFrameworkCore" Version="9.0.2" />
     <PackageReference Include="System.IdentityModel.Tokens.Jwt" Version="8.6.0" />
-    <PackageReference Include="Yarp.ReverseProxy" Version="2.2.0" />
+    <PackageReference Include="Yarp.ReverseProxy" Version="2.3.0" />
   </ItemGroup>
 
   <ItemGroup>
 
@@ -46,7 +46,7 @@ protected override async Task HandleRequirementAsync(AuthorizationHandlerContext
             }
 
              //TODO: check that
-            if (requirement.IsSubscriptionOwnerAllowed && userInfo.IsSubOwnerOfTheSelectetdTenant)
+            if (requirement.IsSubscriptionOwnerAllowed && userInfo.IsSubOwnerOfTheSelectedTenant)
             {
                 context.Succeed(requirement);
                 return;
 
@@ -14,7 +14,7 @@
     <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="9.0.2" />
     <PackageReference Include="Microsoft.Extensions.Caching.Hybrid" Version="9.2.0-preview.1.25105.6" />
     <PackageReference Include="Microsoft.Extensions.ServiceDiscovery.Yarp" Version="9.1.0" />
-    <PackageReference Include="Yarp.ReverseProxy" Version="2.2.0" />
+    <PackageReference Include="Yarp.ReverseProxy" Version="2.3.0" />
   </ItemGroup>
 
   <ItemGroup>
 
@@ -21,6 +21,9 @@ public void Configure(EntityTypeBuilder<UserModel> builder)
                 .IsRequired()
                 .HasMaxLength(200);
 
+            builder.Property(a => a.ActivationCode)
+                .HasMaxLength(50);
+
             builder.Property(a => a.Version)
                 .IsConcurrencyToken();
 
 
@@ -23,6 +23,8 @@ internal static async Task LoadAsync(SecurityDbContext ctx)
                     Lastname = "9000",
                     IsMegaAdmin = false,
                     Version = SystemUserId,
+                    IsEmailVerified = false,
+                    ActivationCode = "000000",
                     AuditInfo = new(audit.CreatedAt, audit.CreatedBy, audit.ModifiedAt, audit.ModifiedBy)
                 };
 
 
@@ -280,6 +280,7 @@ internal static async Task LoadAsync(SecurityDbContext ctx)
                             Lastname = "Admin",
                             IsMegaAdmin = true,
                             Version = AdminUserId,
+                            IsEmailVerified = true,
                             AuditInfo = new(audit.CreatedAt, audit.CreatedBy, audit.ModifiedAt, audit.ModifiedBy)
                         },
                         new()
@@ -292,6 +293,7 @@ internal static async Task LoadAsync(SecurityDbContext ctx)
                             IsMegaAdmin = false,
                             SelectedTenantId = null,
                             Version = UserId2,
+                            IsEmailVerified = true,
                             AuditInfo = new(audit.CreatedAt, audit.CreatedBy, audit.ModifiedAt, audit.ModifiedBy)
                         },
                         new()
@@ -304,6 +306,7 @@ internal static async Task LoadAsync(SecurityDbContext ctx)
                             IsMegaAdmin = false,
                             SelectedTenantId = null,
                             Version = UserId1,
+                            IsEmailVerified = true,
                             AuditInfo = new(audit.CreatedAt, audit.CreatedBy, audit.ModifiedAt, audit.ModifiedBy)
                         },
                         new()
@@ -316,6 +319,7 @@ internal static async Task LoadAsync(SecurityDbContext ctx)
                             IsMegaAdmin = false,
                             SelectedTenantId = null,
                             Version = UserId3,
+                            IsEmailVerified = true,
                             AuditInfo = new(audit.CreatedAt, audit.CreatedBy, audit.ModifiedAt, audit.ModifiedBy)
                         },
                         new() //Not really used anymore because the user is not active at the top lvl (managed by you oauth provider, but inactivity is managed at subscription lvl)
@@ -328,6 +332,7 @@ internal static async Task LoadAsync(SecurityDbContext ctx)
                             IsMegaAdmin = false,
                             SelectedTenantId = null,
                             Version = UserIdInactivated,
+                            IsEmailVerified = true,
                             AuditInfo = new(audit.CreatedAt, audit.CreatedBy, audit.ModifiedAt, audit.ModifiedBy)
                         },
                 };
Original file line number	Diff line number	Diff line change
`@@ -33,5 +33,6 @@`
`33`	`33`	`"ConnectionStrings:messaging": "xx",`
`34`	`34`	`"Parameters:keycloak-password": "admin",`
`35`	`35`	`"Parameters:auth-token-store-key": "Ye6Y36ocA4SaGqYzd0HgmqMhVaM2jlkE",`
`36`		`- "Parameters:auth-register-authorization-key": "Ye6Y36oddddcA4SaGqYzd0HgmqMhVaM2jlkE"`
	`36`	`+ "Parameters:auth-register-authorization-key": "Ye6Y36oddddcA4SaGqYzd0HgmqMhVaM2jlkE",`
	`37`	`+ "Parameters:email-activation-enable": "false"`
`37`	`38`	`}`
Original file line number	Diff line number	Diff line change
`@@ -6,9 +6,11 @@`
`6`	`6`
`7`	`7`	`namespace UbikLink.Common.Api`
`8`	`8`	`{`
	`9`	`+ //TODO: don't forget to activate the email activation`
`9`	`10`	`public class AuthRegisterAuthKey`
`10`	`11`	`{`
`11`	`12`	`public const string Position = "AuthRegister";`
`12`	`13`	`public string Key { get; set; } = string.Empty;`
	`14`	`+ public bool EmailActivationActivated { get; set; } = false;`
`13`	`15`	`}`
`14`	`16`	`}`
Original file line number	Diff line number	Diff line change
`@@ -46,7 +46,7 @@ protected override async Task HandleRequirementAsync(AuthorizationHandlerContext`
`46`	`46`	`}`
`47`	`47`
`48`	`48`	`//TODO: check that`
`49`		`- if (requirement.IsSubscriptionOwnerAllowed && userInfo.IsSubOwnerOfTheSelectetdTenant)`
	`49`	`+ if (requirement.IsSubscriptionOwnerAllowed && userInfo.IsSubOwnerOfTheSelectedTenant)`
`50`	`50`	`{`
`51`	`51`	`context.Succeed(requirement);`
`52`	`52`	`return;`